MFA Guides

Database Administrators

In addition to the database settings which can be set here from within the RapidIdentity Server Administrator Portal, these DATABASE-ONLY keys are provided.

Table 47. Database Administrators

Database Only Key

Description

IgnoreAllDomains

IgnoreAllDomains is helpful when syncing if it is necessary to treat all users based on username only. This can be useful if one username may need to authenticate across many different domains, or if domains are causing issues dueDNS DNS renaming constraints or NetBIOS issues.

AutoCreate

The AutoCreate key automatically creates a user that attempts to sync up, based on the AutoEnroll settings in the portal.

UseEnhancedPinPolicy

UseEnhancedPinPolicy tells the server to enforce CJIS PIN Policy as found in CJIS authentication policy dated XXXXX (need to look that up, or the version number).

TestConnectionPassword

TestConnectionPassword can verify some third party hardware (e.g. load balancers) if the server is alive and responding correctly based solely on HTML responses. This is the password that should be supplied for validation.

To verify, call the URL (i.e. http://servername/one/validation_portal/dovalidate.aspx?test=1 and it should return with a validation page for “TestConnection” if successful. This page will not allow an actual login.

EnableSendSMSforOTP

If this is true, a user can send “SMS” or “text” as their password and have an OTP texted to them for use in their next attempt.

UseBioKeyWebKey

If this is true, RapidIdentity Server will use settings found in the rest services \web.config in order to integrate with BioKey’s WebKey product3